Overview

overview

7

Static

static

3

2024-07-04...uk.exe

windows7-x64

1

2024-07-04...uk.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-07-04_42b66810d4c5f5a26de72e5aa2856f52_ryuk

  • Size

    1.7MB

  • Sample

    240704-gfvazaxcln

  • MD5

    42b66810d4c5f5a26de72e5aa2856f52

  • SHA1

    30451dff290f0daba0457c39e5942ae23a233a3e

  • SHA256

    45e868765adecb5217bc973a679cfe07407f1601cc938fc20b4946d67c699edd

  • SHA512

    8a59e127acadad708092a071a4e2a16feda098ee7a16fa0ec156a9f1804111dfdab328aed784241219a3c6a8921265851568959e4f8decf814fbc82a8176bd44

  • SSDEEP

    24576:W6V6VC/AyqGizWCaFbyBxVirnlBUKZ408vTZrX+lgdW:W6cbGizWCaFb8iLlBUKubZrX+ld

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-07-04_42b66810d4c5f5a26de72e5aa2856f52_ryuk

    • Size

      1.7MB

    • MD5

      42b66810d4c5f5a26de72e5aa2856f52

    • SHA1

      30451dff290f0daba0457c39e5942ae23a233a3e

    • SHA256

      45e868765adecb5217bc973a679cfe07407f1601cc938fc20b4946d67c699edd

    • SHA512

      8a59e127acadad708092a071a4e2a16feda098ee7a16fa0ec156a9f1804111dfdab328aed784241219a3c6a8921265851568959e4f8decf814fbc82a8176bd44

    • SSDEEP

      24576:W6V6VC/AyqGizWCaFbyBxVirnlBUKZ408vTZrX+lgdW:W6cbGizWCaFb8iLlBUKubZrX+ld

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks